公开(公告)号：US20150073953A1

公开(公告)日：2015-03-12

申请号：US14539990

申请日：2014-11-12

Applicant: GOOGLE INC.

Inventor： Michael William Springer ,  Ismail Cem Paya ,  Margorzata Monika Lisowiec ,  Aneto Pablo Okonkwo, IV ,  Patrick Pui Wah Leung ,  Fan Jiang

IPC: G06Q40/00 ,  G06Q20/32

CPC classification number: G06Q40/12 ,  G06Q20/3278 ,  G06Q20/343 ,  G06Q20/353 ,  G06Q20/367 ,  G06Q20/3823 ,  G06Q20/4018 ,  H04B5/0056

Abstract: Preventing fraud during an offline transaction by encoding a randomly-generated card verification code onto a smart card. The verification code is transmitted to a contactless device during each transaction, wherein it is cross-referenced with the account number to ensure presence of the card. Also, every transaction record is signed by an access key resident on the contactless device and certified by a signing key resident on a remote system. Funds may be deposited onto the card when the contactless device creates a deposit request, signs the request using an access key and transmits it to the remote system, which in turn processes the request and certifies it with a signing key. Funds may be withdrawn when the contactless device creates a withdrawal record and signs it using an access key. The remote system verifies the signatures and certifies the records using a signing key when the records are later transmitted.

Abstract translation: 通过将随机生成的卡片验证码编码到智能卡上来防止脱机事务期间的欺诈。 在每次交易期间，将验证码发送到非接触式设备，其中与帐号交叉参考以确保卡的存在。 此外，每个交易记录由驻留在非接触式设备上的访问密钥签名，并由驻留在远程系统上的签名密钥进行认证。 当非接触式设备创建存款请求时，可以将资金存入卡上，使用访问密钥对该请求进行签名并将其发送到远程系统，该远程系统又处理该请求并用签名密钥来证明该请求。 无接触设备创建提款记录并使用访问密钥对其进行签名时，可以撤销资金。 当记录稍后传送时，远程系统使用签名密钥验证签名并验证记录。

公开(公告)号：US08793508B2

公开(公告)日：2014-07-29

申请号：US13717686

申请日：2012-12-17

Applicant: Google Inc.

Inventor： Rob von Behren ,  Jonathan Wall ,  Ismail Cem Paya

IPC: H04L29/06

CPC classification number: G06Q20/3552 ,  G06Q20/3278 ,  G06Q20/35765 ,  G06Q20/3823 ,  G07F7/1008 ,  G07F7/1016

Abstract: Systems, methods, computer programs, and devices are disclosed herein for deploying a local trusted service manager within a secure element of a contactless smart card device. The secure element is a component of a contactless smart card incorporated into a contactless smart card device. An asymmetric cryptography algorithm is used to generate public-private key pairs. The private keys are stored in the secure element and are accessible by a trusted service manager (TSM) software application or a control software application in the secure element. A non-TSM computer with access to the public key encrypts and then transmits encrypted application data or software applications to the secure element, where the TSM software application decrypts and installs the software application to the secure element for transaction purposes.

Abstract translation: 本文公开了系统，方法，计算机程序和设备，用于在非接触式智能卡设备的安全元件内部署本地可信服务管理器。 安全元件是结合到非接触式智能卡设备中的非接触式智能卡的组件。 使用非对称加密算法来生成公私密钥对。 私钥存储在安全元件中，并且可由可信服务管理器（TSM）软件应用程序或安全元件中的控制软件应用程序访问。 访问公共密钥的非TSM计算机加密然后将加密的应用数据或软件应用程序发送到安全元件，其中TSM软件应用程序解密并将软件应用程序安装到安全元件以用于交易目的。

公开(公告)号：US20170255936A1

公开(公告)日：2017-09-07

申请号：US15600677

申请日：2017-05-19

Applicant: GOOGLE INC.

Inventor： Ismail Cem Paya ,  Robert Lieh-Yuan Tsai

IPC: G06Q20/40 ,  G06Q20/20 ,  H04W12/06 ,  G06Q20/38 ,  G06F21/31 ,  G06Q20/32

Abstract: Systems and methods can secure personal identification numbers associated with secure elements within mobile devices. A host application of the mobile device can receive a personal identification number (PIN) or user PIN from a user. The application can generate one or more random PIN components. The application can compute a PIN for the secure element based upon the user PIN and each of the one or more random components. The SE can be configured using the PIN computed for the secure element. Each of the one or more random components may be stored in one or more distinct, diverse locations. In addition to entering the correct user PIN, each of the one or more random components must be retrieved from the diverse locations in order to reconstruct the PIN for the secure element whenever performing a transaction using the secure element.

公开(公告)号：US20150113271A1

公开(公告)日：2015-04-23

申请号：US14061727

申请日：2013-10-23

Applicant: GOOGLE INC.

Inventor： Sarel Kobus Jooste ,  Shane Farmer ,  Ismail Cem Paya

IPC: H04L29/06

CPC classification number: H04L63/0492 ,  G06F12/1408 ,  G06F2212/1052 ,  H04L63/0435 ,  H04L63/061 ,  H04L63/08 ,  H04L63/0807 ,  H04L63/0853 ,  H04W4/80 ,  H04W12/02 ,  H04W12/06

Abstract: A re-programmable wireless cryptographic device can store data securely and use near field communication (NFC) to exchange functionality data and/or program code from a central server system through a mobile device. A user requests a new cryptographic device or a new device function via an application on the mobile device. The central server system transmits program code and a public key used to identify the cryptographic device to the mobile device, which functions as a pass-through conduit for the information, storing it until the devices are synced. A NFC communication channel is created, and the mobile device authenticates the cryptographic device by cross-referencing the public key received from the central server system with the public key transmitted by the cryptographic device once the communication channel is established. Upon authentication, the cryptographic device is synced with the mobile device, and the mobile device passes the program code to the cryptographic device.

Abstract translation: 可重新编程的无线加密设备可以安全地存储数据并使用近场通信（NFC）来通过移动设备从中央服务器系统交换功能数据和/或程序代码。 用户通过移动设备上的应用请求新的加密设备或新的设备功能。 中央服务器系统将用于识别加密设备的程序代码和公钥传送到移动设备，该移动设备用作信息的直通管道，存储它，直到设备被同步。 创建NFC通信信道，并且移动设备通过在建立通信信道之后，使用由密码设备发送的公开密钥从中央服务器系统接收到的公共密钥交叉参考来认证密码设备。 在认证时，加密设备与移动设备同步，并且移动设备将程序代码传递给密码设备。

公开(公告)号：US09684898B2

公开(公告)日：2017-06-20

申请号：US14036962

申请日：2013-09-25

Applicant: GOOGLE INC.

Inventor： Ismail Cem Paya ,  Robert Lieh-Yuan Tsai

IPC: H04W12/06 ,  G06Q20/40 ,  G06F21/31 ,  G06Q20/20 ,  G06Q20/32 ,  G06Q20/38

CPC classification number: G06Q20/4012 ,  G06F21/31 ,  G06Q20/204 ,  G06Q20/3227 ,  G06Q20/3278 ,  G06Q20/3821 ,  G06Q20/3827 ,  G06Q20/385 ,  H04W12/06

Abstract: Systems and methods can secure personal identification numbers associated with secure elements within mobile devices. A host application of the mobile device can receive a personal identification number (PIN) or user PIN from a user. The application can generate one or more random PIN components. The application can compute a PIN for the secure element based upon the user PIN and each of the one or more random components. The SE can be configured using the PIN computed for the secure element. Each of the one or more random components may be stored in one or more distinct, diverse locations. In addition to entering the correct user PIN, each of the one or more random components must be retrieved from the diverse locations in order to reconstruct the PIN for the secure element whenever performing a transaction using the secure element.

公开(公告)号：US20170048210A1

公开(公告)日：2017-02-16

申请号：US15338022

申请日：2016-10-28

Applicant: GOOGLE INC.

Inventor： Sarel Kobus Jooste ,  Shane Farmer ,  Ismail Cem Paya

IPC: H04L29/06 ,  H04W12/06 ,  H04W12/02 ,  G06F12/14 ,  H04W4/00

CPC classification number: H04L63/0492 ,  G06F12/1408 ,  G06F2212/1052 ,  H04L63/0435 ,  H04L63/061 ,  H04L63/08 ,  H04L63/0807 ,  H04L63/0853 ,  H04W4/80 ,  H04W12/0023 ,  H04W12/00407 ,  H04W12/02 ,  H04W12/06

Abstract: A re-programmable wireless device can store data securely and use near field communication (NFC) to exchange functionality data and/or program code from a central server system through a mobile device. A user requests a new re-programmable wireless device or a new re-programmable wireless device function via an application on the mobile device. The central server system transmits program code and a public key used to identify the re-programmable wireless device to the mobile device, which functions as a pass-through conduit for the information, storing it until the devices are synced. A NFC communication channel is created, and the mobile device authenticates the re-programmable wireless device by cross-referencing the public key received from the central server system with the public key transmitted by the re-programmable wireless device once the communication channel is established. Upon authentication, the re-programmable wireless device is synced with the mobile device, and the mobile device passes the program code to the re-programmable wireless device.

Abstract translation: 可重新编程的无线设备可以安全地存储数据并使用近场通信（NFC）来通过移动设备从中央服务器系统交换功能数据和/或程序代码。 用户通过移动设备上的应用请求新的可重新编程的无线设备或新的可重新编程的无线设备功能。 中央服务器系统将程序代码和用于将可重新编程的无线设备识别的公共密钥发送到移动设备，移动设备用作信息的直通管道，存储它，直到设备被同步。 创建NFC通信信道，并且移动设备通过在建立通信信道之后，利用由可重新编程的无线设备发送的公共密钥交叉参考从中央服务器系统接收到的公钥来认证可重新编程的无线设备。 经认证后，可重新编程的无线设备与移动设备同步，移动设备将程序代码传递给可重新编程的无线设备。

公开(公告)号：US09516006B2

公开(公告)日：2016-12-06

申请号：US14061727

申请日：2013-10-23

Applicant: GOOGLE INC.

Inventor： Sarel Kobus Jooste ,  Shane Farmer ,  Ismail Cem Paya

IPC: H04L29/06 ,  H04W4/00 ,  H04W12/02 ,  H04W12/06

CPC classification number: H04L63/0492 ,  G06F12/1408 ,  G06F2212/1052 ,  H04L63/0435 ,  H04L63/061 ,  H04L63/08 ,  H04L63/0807 ,  H04L63/0853 ,  H04W4/80 ,  H04W12/02 ,  H04W12/06

Abstract: A re-programmable wireless cryptographic device can store data securely and use near field communication (NFC) to exchange functionality data and/or program code from a central server system through a mobile device. A user requests a new cryptographic device or a new device function via an application on the mobile device. The central server system transmits program code and a public key used to identify the cryptographic device to the mobile device, which functions as a pass-through conduit for the information, storing it until the devices are synced. A NFC communication channel is created, and the mobile device authenticates the cryptographic device by cross-referencing the public key received from the central server system with the public key transmitted by the cryptographic device once the communication channel is established. Upon authentication, the cryptographic device is synced with the mobile device, and the mobile device passes the program code to the cryptographic device.

Abstract translation: 可重新编程的无线加密设备可以安全地存储数据并使用近场通信（NFC）来通过移动设备从中央服务器系统交换功能数据和/或程序代码。 用户通过移动设备上的应用请求新的加密设备或新的设备功能。 中央服务器系统将用于识别加密设备的程序代码和公钥传送到移动设备，该移动设备用作信息的直通管道，存储它，直到设备被同步。 创建NFC通信信道，并且移动设备通过在建立通信信道之后，使用由密码设备发送的公开密钥从中央服务器系统接收到的公共密钥交叉参考来认证密码设备。 在认证时，加密设备与移动设备同步，并且移动设备将程序代码传递给密码设备。

公开(公告)号：US08806199B2

公开(公告)日：2014-08-12

申请号：US13686887

申请日：2012-11-27

Applicant: Google Inc.

Inventor： Rob von Behren ,  Jonathan Wall ,  Ismail Cem Paya ,  Alexej Muehlberg ,  Hauke Meyn

IPC: H04L9/08 ,  G06F12/14 ,  G06F17/30 ,  G06Q20/34 ,  G06F21/62

CPC classification number: G06Q20/35765 ,  G06F21/62 ,  G06Q20/3552 ,  G06Q20/3563 ,  G07F7/1008 ,  H04L9/08 ,  H04L9/0897 ,  H04L2209/805 ,  H04W4/80

Abstract: Systems, methods, computer programs, and devices are disclosed herein for partitioning the namespace of a secure element in contactless smart card devices and for writing application data in the secure element using requests from a software application outside the secure element. The secure element is a component of a contactless smart card incorporated into a contactless smart card device. A control software application resident in the same or a different secure element provides access types and access bits, for each access memory block of the secure element namespace, thereby portioning the namespace into different access types. Further, a software application outside the secure element manages the control software application by passing commands using a secure channel to the secure element, thereby enabling an end-user of the contactless smart card device or a remote computer to control the partitioning and use of software applications within the secure element.

Abstract translation: 本文公开了系统，方法，计算机程序和设备，用于对非接触式智能卡设备中的安全元件的命名空间进行分区，并且使用来自安全元件之外的软件应用的请求将应用数据写入安全元件。 安全元件是结合到非接触式智能卡设备中的非接触式智能卡的组件。 驻留在相同或不同安全元件中的控制软件应用程序为安全元件命名空间的每个访问存储块提供访问类型和访问位，从而将命名空间分配到不同的访问类型。 此外，安全元件之外的软件应用程序通过使用安全通道传递命令来管理控制软件应用程序到安全元件，从而使无接触智能卡设备或远程计算机的最终用户能够控制软件的分区和使用 安全元件中的应用程序。

公开(公告)号：US08706081B1

公开(公告)日：2014-04-22

申请号：US13717904

申请日：2012-12-18

Applicant: Google Inc.

Inventor： Ismail Cem Paya ,  Shane Alexander Farmer ,  Robert Tsai

IPC: H04M1/66

CPC classification number: H04M1/7253 ,  G06Q20/3227 ,  G06Q20/3278 ,  H04L63/0227 ,  H04M15/93 ,  H04M17/103 ,  H04W4/80 ,  H04W12/08

Abstract: A method and system for packet inspection in a near field communication (NFC) controller for secure element (SE) protection are described. In a communication device, the NFC controller can receive filtering rules that correspond to security for an applet in the SE. The NFC controller can also receive a packet with commands or instructions for the SE. The NFC controller can inspect the contents of the packet based on the filtering rules and determine whether to communicate the packet to the SE. The packet filtering performed by the NFC controller can also be based on whether the packet was received through an interface with an operating system in the communication device or through an interface with an NFC antenna. The filtering rules can be removed or disabled when an update for the applet is received and installed in the SE.

Abstract translation: 描述了用于安全元件（SE）保护的近场通信（NFC）控制器中的分组检查的方法和系统。 在通信设备中，NFC控制器可以接收与SE中的小应用程序的安全性相对应的过滤规则。 NFC控制器还可以接收具有用于SE的命令或指令的分组。 NFC控制器可以根据过滤规则检查数据包的内容，并确定是否将数据包传送给SE。 由NFC控制器执行的分组过滤也可以基于通过与通信设备中的操作系统的接口或通过与NFC天线的接口来接收分组。 当小程序的更新被接收并安装在SE中时，可以删除或禁用过滤规则。

公开(公告)号：US20140089196A1

公开(公告)日：2014-03-27

申请号：US14036962

申请日：2013-09-25

Applicant: GOOGLE INC.

Inventor： Ismail Cem Paya ,  Robert Lieh-Yuan Tsai

IPC: G06Q20/40

CPC classification number: G06Q20/4012 ,  G06F21/31 ,  G06Q20/204 ,  G06Q20/3227 ,  G06Q20/3278 ,  G06Q20/3821 ,  G06Q20/3827 ,  G06Q20/385 ,  H04W12/06

Abstract: Systems and methods can secure personal identification numbers associated with secure elements within mobile devices. A host application of the mobile device can receive a personal identification number (PIN) or user PIN from a user. The application can generate one or more random PIN components. The application can compute a PIN for the secure element based upon the user PIN and each of the one or more random components. The SE can be configured using the PIN computed for the secure element. Each of the one or more random components may be stored in one or more distinct, diverse locations. In addition to entering the correct user PIN, each of the one or more random components must be retrieved from the diverse locations in order to reconstruct the PIN for the secure element whenever performing a transaction using the secure element.

Abstract translation: 系统和方法可以保护与移动设备内的安全元件相关联的个人识别号码。 移动设备的主机应用可以从用户接收个人识别码（PIN）或用户PIN。 应用程序可以生成一个或多个随机PIN组件。 应用程序可以基于用户PIN和一个或多个随机组件中的每个来计算安全元件的PIN。 可以使用针对安全元素计算的PIN来配置SE。 一个或多个随机组件中的每一个可以存储在一个或多个不同的不同位置。 除了输入正确的用户PIN之外，必须从不同的位置检索一个或多个随机组件中的每一个，以便在使用安全元件执行事务时重构安全元件的PIN。